Vulnerability Details : CVE-2022-41593
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Vulnerability category: Memory Corruption
Exploit prediction scoring system (EPSS) score for CVE-2022-41593
Probability of exploitation activity in the next 30 days: 0.04%
CVSS scores for CVE-2022-41593
|Base Score||Base Severity||CVSS Vector||Exploitability Score||Impact Score||Source|
CWE ids for CVE-2022-41593
The product reads data past the end, or before the beginning, of the intended buffer.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
The product writes data past the end, or before the beginning, of the intended buffer.